- CISCO MAC ADDRESS TABLE DEFAULT FILTERING HOW TO
- CISCO MAC ADDRESS TABLE DEFAULT FILTERING FOR MAC
- CISCO MAC ADDRESS TABLE DEFAULT FILTERING SOFTWARE
If the client authentication is successful, the client is granted access to the WLAN. Then, the RADIUS server validates the MAC address based on the database it has. When a user database is stored on a RADIUS server the WLC forwards the MAC address of the client to the RADIUS server for client validation. The only difference is that the users MAC address database is stored in the RADIUS server instead of the WLC. Enter the maximum number of entries (512-2048)Īlternatively, MAC address authentication can also be performed using a RADIUS server. In order to increase the local database, use this command from the CLI: config database size ? Together, all of these types of users cannot exceed the configured database size. Local network users, which includes guest users Local management users, which includes lobby ambassadors The local database stores entries for these items: The local user database is limited to a maximum of 2048 entries.
CISCO MAC ADDRESS TABLE DEFAULT FILTERING FOR MAC
When a user tries to access the WLAN that is configured for MAC filtering, the client MAC address is validated against the local database on the WLC, and the client is granted access to the WLAN if the authentication is successful.īy default, the WLC local database supports up to 512 user entries.
With local MAC authentication, user MAC addresses are stored in a database on the WLC. There are two types of MAC authentication that are supported on WLCs: When you create a MAC address filter on WLCs, users are granted or denied access to the WLAN network based on the MAC address of the client they use. MAC Address Filter (MAC Authentication) on WLCs Refer to Cisco Technical Tips Conventions for more information on document conventions. If your network is live, make sure that you understand the potential impact of any command.
All of the devices used in this document started with a cleared (default) configuration. The information in this document was created from the devices in a specific lab environment.
CISCO MAC ADDRESS TABLE DEFAULT FILTERING SOFTWARE
The information in this document is based on these software and hardware versions:Ĭisco 4400 WLC that runs software version 5.2.178.0Ĩ02.11 a/b/g wireless client adapter with firmware 4.4Īironet Desktop Utility (ADU) version 4.4 Prerequisites RequirementsĮnsure that you meet these requirements before you attempt this configuration:īasic knowledge of the configuration of LAPs and Cisco WLCsīasic knowledge of Cisco Unified Wireless Security Solutions
CISCO MAC ADDRESS TABLE DEFAULT FILTERING HOW TO
This document also discusses how to authorize lightweight access points (LAPs) against an AAA server.
For example, a mask of 00-00-00-00-00-00 means an exact match, and a mask of FF-FF-FF-FF-FF-FF means "any.This document explains how to configure MAC filters with wireless LAN controllers (WLCs) with a configuration example. Enter hexadecimal numbers, where an equivalent binary bit “0” means to match a bit and “1” means to ignore a bit. The mask should be hexadecimal numbers (representing an equivalent bit mask) in the form xx-xx-xx-xx-xx-xx that is applied to the specified MAC address. The Type field may include the following types:ĭelete-on-reset - static entry to be deleted when system is reset The MAC Address Table contains the MAC addresses associated with each interface. Sort - Sort by address, vlan or interface. Use this command to view classes of entries in the bridge-forwarding database. What about the command: show mac-address-table
0 kommentar(er)
